CVE-2024-6204

Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine Exchange Reporter Plus versions before 5715

Description: The issue is related to SQL Injection in the reports module of the software. This allows for potential exploitation. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations: For versions before 5715, update to a version 5715 or later to resolve the SQL Injection issue in the reports module. As a temporary workaround, consider restricting access to the reports module until a patch is available.